Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Adapt JSON serialization #19

Merged
merged 3 commits into from
May 15, 2024
Merged

Adapt JSON serialization #19

merged 3 commits into from
May 15, 2024

Conversation

danielfett
Copy link
Contributor

@danielfett danielfett commented Mar 8, 2024
edited
Loading

This implements JSON serialization as outlined in oauth-wg/oauth-selective-disclosure-jwt#403 and defined in oauth-wg/oauth-selective-disclosure-jwt#414

Noteworthy changes:

  • To support JSON Serialization with multiple issuer signatures:
    • In the settings.yml files for examples and test cases, issuer_key was renamed to issuer_keys and MAY be an array of keys.
    • The issuer_keys argument to the SDJWTIssuer MAY be an array of keys (but a single key is still supported, so no changes in legacy usages required)
    • The callable cb_get_issuer_key passed to SDJWTVerifier MAY return a JWKSet
  • Example/test case specification.yml files may now specify settings_override to override whatever is defined in the settings.yml

@danielfett
Adapt JSON serialization
e0e31de 
Signed-off-by: Daniel Fett <[email protected]>
@danielfett danielfett force-pushed the danielfett/new-json-serialization branch from 884f6b3 to e0e31de Compare March 8, 2024 14:48
@danielfett danielfett requested a review from peppelinux March 8, 2024 14:48
@danielfett danielfett mentioned this pull request Mar 8, 2024
Merged
@bc-pi
Copy link
Contributor

bc-pi commented Mar 8, 2024

  • issuer_keys argument to the SDJWTIssuer MAY be an array of keys (but a single key is still supported, so no changes in legacy usages required)

but an update to the name in the settings.yml of dependent projects (like SD-JWT VC) will be needed, no?

peppelinux
peppelinux reviewed Mar 10, 2024
View reviewed changes
src/sd_jwt/common.py Outdated Show resolved Hide resolved
peppelinux
peppelinux reviewed Mar 10, 2024
View reviewed changes
src/sd_jwt/common.py Outdated Show resolved Hide resolved
peppelinux
peppelinux reviewed Mar 10, 2024
View reviewed changes
src/sd_jwt/common.py Outdated Show resolved Hide resolved
@c2bo
Copy link

c2bo commented Apr 6, 2024

  • issuer_keys argument to the SDJWTIssuer MAY be an array of keys (but a single key is still supported, so no changes in legacy usages required)

but an update to the name in the settings.yml of dependent projects (like SD-JWT VC) will be needed, no?

What about catching the old yaml files during parsing, converting to the correct claim names (basically issuer_key -> issuer_keys for both functions parsing yaml files) and outputting a warning that issuer_key is deprecated? That would be a very small change and not break stuff.

danielfett and others added 2 commits May 15, 2024 16:07
@danielfett @peppelinux
Apply suggestions from code review
b3ac23f 
Co-authored-by: Giuseppe De Marco <[email protected]>
Signed-off-by: Daniel Fett <[email protected]>
@danielfett
Add workaround for old specification files
fc90af6 
Signed-off-by: Daniel Fett <[email protected]>
@danielfett danielfett force-pushed the danielfett/new-json-serialization branch from 367b02d to fc90af6 Compare May 15, 2024 14:16
@danielfett danielfett merged commit cde6139 into main May 15, 2024
6 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@peppelinux peppelinux peppelinux left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@danielfett @bc-pi @c2bo @peppelinux